Security Advisories
Privately discuss, fix, and publish information about security vulnerabilities in your repository's code.
-
SQL Injection via user-groups (CVE-2019-19029)GHSA-qcfv-8v29-469w published
Dec 3, 2019 by michmikehigh severity -
SQL Injection via project quotas (CVE-2019-19026)GHSA-rh89-vvrg-fg64 published
Dec 3, 2019 by michmikehigh severity -
Missing CSRF protection (CVE-2019-19025)GHSA-gcqm-v682-ccw6 published
Dec 3, 2019 by michmikecritical severity -
User Enumeration Vulnerability (CVE-2019-3990)GHSA-6qj9-33j4-rvhg published
Dec 3, 2019 by michmikemoderate severity -
Privilege EscalationGHSA-3868-7c5x-4827 published
Dec 3, 2019 by michmikecritical severity -
CVE-2019-16919GHSA-x2r2-w9c7-h624 published
Oct 16, 2019 by michmikecritical severity -
CVE-2019-16097GHSA-fqvr-xx6w-m6m7 published
Sep 19, 2019 by michmikehigh severity